$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e32382e302f32322d3232203d3e203538353532.roa File: 3130332e31312e32382e302f32322d3232203d3e203538353532.roa (raw, json) Hash identifier: PaOSUvmuawHyrBfsk5x20JGfCnH31r6qU7rvyO4aocE= Subject key identifier: 8B:8D:62:A1:5D:FC:A1:C7:57:1D:82:1D:74:FD:01:51:FE:48:12:0D Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 6143498974DEF114B57F2EFC0020F038BABB6855 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e32382e302f32322d3232203d3e203538353532.roa Signing time: Mon 01 Jul 2024 01:03:05 +0000 ROA not before: Mon 01 Jul 2024 00:58:05 +0000 ROA not after: Mon 30 Jun 2025 01:03:05 +0000 asID: 58552 IP address blocks: 103.11.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 18:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:43:49:89:74:de:f1:14:b5:7f:2e:fc:00:20:f0:38:ba:bb:68:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jul 1 00:58:05 2024 GMT Not After : Jun 30 01:03:05 2025 GMT Subject: CN=8B8D62A15DFCA1C7571D821D74FD0151FE48120D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:09:a5:88:19:8a:b9:b1:33:72:4f:cd:c8:1d: e7:3d:07:7c:b3:88:79:04:42:67:f1:37:fb:1d:40: 15:8d:d6:68:34:e9:a7:30:7f:ca:de:18:35:dc:7a: cf:82:f7:5d:b7:e9:75:f3:ee:87:b2:6d:07:6a:83: a4:53:cd:17:ca:5d:e8:24:b4:8e:3e:26:01:76:b3: b6:21:62:44:4c:92:c5:13:62:c3:c4:47:99:24:ee: a6:43:cc:fa:80:e5:01:46:19:04:2b:76:0b:04:e0: 85:08:9c:6c:53:75:eb:1e:4e:1e:22:4f:6d:72:c4: fd:d2:b5:d7:54:ae:a7:62:6a:2a:9b:98:11:fa:8a: fe:24:0c:61:a5:43:af:bd:af:4d:cd:fc:55:c9:2b: 4b:7b:84:c8:55:de:8a:44:b9:4d:01:2a:78:91:70: 6c:a2:b8:7f:e7:cf:0c:c5:69:76:95:f8:19:e8:86: ef:ee:70:08:b3:8d:e7:af:26:ce:9e:f8:41:05:d1: 8e:bf:51:e2:fc:69:5b:c4:9c:d8:9a:78:f0:16:2a: 1d:df:72:8f:0b:10:fd:2b:13:75:94:ba:2c:6b:a7: 00:46:18:97:c2:c3:a4:88:d9:9b:b4:6c:55:76:95: 10:a8:9b:f5:6d:ff:ea:81:af:5e:1b:c3:69:de:ec: 64:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:8D:62:A1:5D:FC:A1:C7:57:1D:82:1D:74:FD:01:51:FE:48:12:0D X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31312e32382e302f32322d3232203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.11.28.0/22 Signature Algorithm: sha256WithRSAEncryption 6d:b0:b6:66:a3:bd:93:1f:77:3d:83:3e:c6:fc:b4:16:c4:d0: f6:ba:3c:45:3b:37:39:7a:77:ea:8c:86:81:88:64:3c:25:e9: 63:20:4f:f3:62:4d:90:e5:a8:c2:1f:b1:bd:7e:71:6a:99:df: fb:c1:01:ee:af:de:ab:e7:9b:4b:34:8d:f4:41:27:73:d6:a5: 64:9c:53:e7:04:34:39:40:13:2a:c2:30:b9:94:df:5b:61:61: 4b:f3:52:a3:09:e2:b1:00:32:d4:53:d6:cd:da:09:77:f1:80: 42:48:95:37:f7:5c:39:c5:cc:4f:7b:46:5d:3d:0e:a3:07:a3: ff:6f:f8:58:8b:8d:76:c6:49:2f:82:14:48:f1:69:88:15:14: 05:e2:34:20:49:cf:10:4a:a2:aa:9d:31:52:a7:d9:20:b8:36: a8:d4:d8:56:d8:a9:56:18:a0:1e:50:7e:d0:38:ab:39:89:96: 23:3d:b2:71:68:3b:bb:a3:21:22:6f:17:26:91:f0:43:05:cd: 48:f3:d1:f7:4b:04:53:22:5e:90:87:ed:30:0a:00:43:e0:95: f3:7a:1c:ca:15:88:cc:92:34:98:20:ec:af:5e:4b:ed:66:5b: d2:6e:c6:bf:77:08:be:0d:9e:08:8d:69:9d:f0:1f:9a:97:1d: 4f:dc:c2:f1 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUYUNJiXTe8RS1fy78ACDwOLq7aFUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDA3MDEwMDU4MDVaFw0yNTA2MzAwMTAzMDVaMDMxMTAvBgNV BAMTKDhCOEQ2MkExNURGQ0ExQzc1NzFEODIxRDc0RkQwMTUxRkU0ODEyMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8CaWIGYq5sTNyT83IHec9B3yz iHkEQmfxN/sdQBWN1mg06acwf8reGDXces+C91236XXz7oeybQdqg6RTzRfKXegk tI4+JgF2s7YhYkRMksUTYsPER5kk7qZDzPqA5QFGGQQrdgsE4IUInGxTdeseTh4i T21yxP3StddUrqdiaiqbmBH6iv4kDGGlQ6+9r03N/FXJK0t7hMhV3opEuU0BKniR cGyiuH/nzwzFaXaV+Bnohu/ucAizjeevJs6e+EEF0Y6/UeL8aVvEnNiaePAWKh3f co8LEP0rE3WUuixrpwBGGJfCw6SI2Zu0bFV2lRCom/Vt/+qBr14bw2ne7GTNAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUi41ioV38ocdXHYIddP0BUf5IEg0wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzAzMzJlMzEzMTJlMzIzODJlMzAyZjMyMzIy ZDMyMzIyMDNkM2UyMDM1MzgzNTM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnCxwwDQYJKoZIhvcN AQELBQADggEBAG2wtmajvZMfdz2DPsb8tBbE0Pa6PEU7Nzl6d+qMhoGIZDwl6WMg T/NiTZDlqMIfsb1+cWqZ3/vBAe6v3qvnm0s0jfRBJ3PWpWScU+cENDlAEyrCMLmU 31thYUvzUqMJ4rEAMtRT1s3aCXfxgEJIlTf3XDnFzE97Rl09DqMHo/9v+FiLjXbG SS+CFEjxaYgVFAXiNCBJzxBKoqqdMVKn2SC4NqjU2FbYqVYYoB5QftA4qzmJliM9 snFoO7ujISJvFyaR8EMFzUjz0fdLBFMiXpCH7TAKAEPglfN6HMoViMySNJgg7K9e S+1mW9Juxr93CL4NngiNaZ3wH5qXHU/cwvE= -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:41 2024 by rpki-client on console-ams.rpki-client.org